Security #7067: defrag: off by one leads to possible evasion - Suricata - Open Information Security Foundation

Actions

Copy link

Security #7067

closed

defrag: off by one leads to possible evasion

Added by Philippe Antoine 4 months ago. Updated 2 days ago.

Status:

Closed

Priority:

Normal

Assignee:

Philippe Antoine

Target version:

8.0.0-beta1

Affected Versions:

Label:

CVE:

2024-45796

Git IDs:

Severity:

HIGH

Disclosure Date:

09/04/2024

Description

Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69475

Regression on 26th of April cf https://github.com/OISF/suricata/compare/ad4185b3c4fdcdfd0eac44a5ddf6bc7484c35bda...4fedba11404ea6548fd2ed319adf4b78a56180b4

Victor, I leave you this new one, cc @Jason Ish

Files

Download all files

lolc.pcap (129 KB) lolc.pcap		Philippe Antoine, 06/11/2024 08:15 AM
lole.pcap (300 Bytes) lole.pcap		Philippe Antoine, 06/11/2024 08:55 AM

Subtasks 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Security #7067

defrag: off by one leads to possible evasion

Updated by Philippe Antoine 4 months ago

Updated by Victor Julien 4 months ago

Updated by Philippe Antoine 4 months ago

Updated by Philippe Antoine 4 months ago

Updated by Philippe Antoine 4 months ago

Updated by Philippe Antoine 4 months ago

Updated by Victor Julien 4 months ago

Updated by Philippe Antoine 3 months ago

Updated by Philippe Antoine 2 months ago

Updated by OISF Ticketbot 2 months ago

Updated by OISF Ticketbot 2 months ago

Updated by Philippe Antoine about 2 months ago

Updated by Victor Julien about 2 months ago

Updated by Victor Julien about 1 month ago

Updated by Victor Julien about 1 month ago

Updated by Juliana Fajardini Reichow about 1 month ago

Updated by Philippe Antoine 17 days ago

Updated by Victor Julien 2 days ago